jetson-customize-nvpmodel

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill directs users to the NVIDIA Power Estimator website (https://jetson-tools.nvidia.com/powerestimator/) to generate configuration files. This is a well-known service provided by the vendor.
  • [COMMAND_EXECUTION]: The instructions involve using grep to search the system filesystem and reference deployment procedures that use sudo cp and sudo nvpmodel. These commands are expected and necessary for Board Support Package (BSP) development and device configuration.
  • [PROMPT_INJECTION]: The skill processes user-supplied configuration files from the NVIDIA Power Estimator. While this represents an ingestion surface for untrusted data, the skill mitigates risk through strict formatting rules and validation against kernel frequency tables.
  • Ingestion points: User-provided file paths for nvpmodel.conf (File: SKILL.md).
  • Boundary markers: None explicitly defined for the file content.
  • Capability inventory: File writes to source overlay paths and system command execution through deployment scripts (File: SKILL.md).
  • Sanitization: Implementation of strict header formatting rules, parameter mapping requirements, and validation of frequency values against the kernel's available frequency tables.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 08:45 PM
Security Audit — agent-trust-hub — jetson-customize-nvpmodel